Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4774 EXPLOITDB text
AuraCMS 1.62 - SQL Injection via pdf.php id Parameter
SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-4804 and CVE-2007-4171.
by Don Tukulesto
CVE-2010-4172 EXPLOITDB text VERIFIED
Apache Tomcat 6.0.12-6.0.29 and 7.0.0-7.0.4 - Cross-Site Scripting via Manager Application Parameters
Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) orderBy or (2) sort parameter to sessionsList.jsp, or unspecified input to (3) sessionDetail.jsp or (4) java/org/apache/catalina/manager/JspHelper.java, related to use of untrusted web applications.
by Adam Muntner
EIP-2026-102486 EXPLOITDB text
JCMS 2010 - File Download
by Beach
CVE-2010-3830 EXPLOITDB text VERIFIED
iPhone OS < 4.1 - Privilege Escalation via Packet Filter Rule Processing
Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors.
by Apple
EIP-2026-100814 EXPLOITDB text VERIFIED
Hot Links SQL 3.2 - 'report.cgi' SQL Injection
by Aliaksandr Hartsuyeu
EIP-2026-100092 EXPLOITDB text
Acidcat CMS 3.3 - 'FCKeditor' Arbitrary File Upload
by Net.Edit0r
EIP-2026-111874 EXPLOITDB text
sahitya graphics CMS - Multiple Vulnerabilities
by Dr.0rYX & Cr3W-DZ
CVE-2010-4771 EXPLOITDB text
S-CMS 2.5 - SQL Injection via viewforum.php id Parameter
SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by LordTittiS
EIP-2026-117668 EXPLOITDB text
Native Instruments Service Center 2.2.5 - Local Privilege Escalation
by LiquidWorm
EIP-2026-115897 EXPLOITDB text VERIFIED
Native Instruments Reaktor 5 Player 5.5.1 - Heap Memory Corruption
by LiquidWorm
EIP-2026-113001 EXPLOITDB text VERIFIED
vBulletin 4.0.8 PL1 - Cross-Site Scripting Filter Bypass within Profile Customization
by MaXe
CVE-2010-4772 EXPLOITDB text
S-CMS 2.5 - Cross-Site Scripting via id Parameter
Cross-site scripting (XSS) vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php.
by LordTittiS
CVE-2010-4769 EXPLOITDB text VERIFIED
Joomla! com_jimtawl 1.0.2 - Path Traversal
Directory traversal vulnerability in the Jimtawl (com_jimtawl) component 1.0.2 Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the task parameter to index.php.
by Mask_magicianz
EIP-2026-113062 EXPLOITDB text
ViArt Shop 4.0.5 - Multiple Vulnerabilities
by Ariko-Security
CVE-2010-4770 EXPLOITDB text
CommodityRentals DVD Rentals Script - SQL Injection
SQL injection vulnerability in index.php in CommodityRentals DVD Rentals Script allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
by JaMbA
EIP-2026-105218 EXPLOITDB text
Arabian YouTube Script - Blind SQL Injection
by R3d-D3V!L
EIP-2026-113343 EXPLOITDB text
WebRCSdiff 0.9 - 'viewver.php' Remote File Inclusion
by FL0RiX
EIP-2026-107203 EXPLOITDB text VERIFIED
Fozzcom Shopping < 7.94 / < 8.04 - Multiple Vulnerabilities
by Dr.0rYX & Cr3W-DZ
EIP-2026-106091 EXPLOITDB text VERIFIED
CompactCMS 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities (1)
by High-Tech Bridge SA
EIP-2026-119111 EXPLOITDB text VERIFIED
SAP NetWeaver 7.0 - SQL Monitor Multiple Cross-Site Scripting Vulnerabilities
by a.polyakov
EIP-2026-107263 EXPLOITDB text
Front Accounting 2.3RC2 - Multiple SQL Injections
by Juan Manuel Garcia
EIP-2026-107262 EXPLOITDB text
Front Accounting 2.3RC2 - Multiple Persistent Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
EIP-2026-100550 EXPLOITDB text
Sitefinity CMS - 'ASP.NET' Arbitrary File Upload
by Net.Edit0r
EIP-2026-118435 EXPLOITDB text VERIFIED
DServe - Multiple Cross-Site Scripting Vulnerabilities
by Axiell
EIP-2026-113000 EXPLOITDB text VERIFIED
vBulletin 4.0.8 - Persistent Cross-Site Scripting via Profile Customization
by MaXe
By Source
All 31,386 Writeup 62,533 Exploitdb 50,076 Nomisec 22,490 Github 3,720 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,618 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,334 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25